CVE-2025-23155 — Linux vulnerability

42 documents7 sources

Severity

5.5MEDIUMNVD

OSV3.2

EPSS

0.1%

top 71.25%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux +8 more

Timeline

PublishedMay 1

Latest updateMar 25

Description

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: Fix accessing freed irq affinity_hint In stmmac_request_irq_multi_msi(), a pointer to the stack variable cpu_mask is passed to irq_set_affinity_hint(). This value is stored in irq_desc->affinity_hint, but once stmmac_request_irq_multi_msi() returns, the pointer becomes dangling. The affinity_hint is exposed via procfs with S_IRUGO permissions, allowing any unprivileged process to read it. Accessing this stale poi…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages13 packages

▶NVDlinux/linux_kernel5.13 — 6.12.36+2

▶Debianlinux/linux_kernel< 6.1.164-1+2

▶Ubuntulinux/linux_kernel< 6.8.0-100.100+1

▶msrcmsrc/azl3_kernel_6.6.96.2-1_on_azure_linux_3.0

▶msrcmsrc/azl3_kernel_6.6.96.2-2_on_azure_linux_3.0

Patches

Patch: git.kernel.org ↗Patch: git.kernel.org ↗Patch: git.kernel.org ↗

🔴Vulnerability Details

OSV

linux-azure-6.8 vulnerabilities↗2026-03-25

▶

OSV

linux-azure-fips vulnerabilities↗2026-03-04

▶

OSV

linux-azure vulnerabilities↗2026-03-04

▶

OSV

linux-ibm, linux-ibm-6.8 vulnerabilities↗2026-02-24

▶

OSV

linux-xilinx vulnerabilities↗2026-02-24

▶

📋Vendor Advisories

Ubuntu

Linux kernel (Azure) vulnerabilities↗2026-03-25

▶

Ubuntu

Linux kernel (Azure) vulnerabilities↗2026-03-04

▶

Ubuntu

Linux kernel (Azure FIPS) vulnerabilities↗2026-03-04

▶

Ubuntu

Linux kernel (Xilinx) vulnerabilities↗2026-02-24

▶

Ubuntu

Linux kernel (IBM) vulnerabilities↗2026-02-24

▶

External resources

NVD MITRE

Affected products11

Debian Linuxfixed in linux 6.1.164-1 (bookworm)

Debian Linux-6.1fixed in linux 6.1.164-1 (bookworm)

Linux≥ 8deec94c6040bb4a767f6e9456a0a44c7f2e713e, < 2fbf67ddb8a0d0efc00d2df496a9843ec318d48b≥ 8deec94c6040bb4a767f6e9456a0a44c7f2e713e, < 960dab23f6d405740c537d095f90a4ee9ddd9285≥ 8deec94c6040bb4a767f6e9456a0a44c7f2e713e, < 442312c2a90d60c7a5197246583fa91d9e579985+4 more

Linux Kernel≥ 0, < 6.1.164-1≥ 0, < 6.12.37-1≥ 5.13, < 6.12.36+4 more

Msrc Azl3 Kernel 6.6.104.2-4 ON Azure Linux 3.0

Msrc Azl3 Kernel 6.6.112.1-2 ON Azure Linux 3.0

Msrc Azl3 Kernel 6.6.96.2-1 ON Azure Linux 3.0

Msrc Azl3 Kernel 6.6.96.2-2 ON Azure Linux 3.0

Msrc Cbl2 Kernel 5.15.186.1-1 ON CBL Mariner 2.0

Msrc Cbl2 Kernel 5.15.200.1-1 ON CBL Mariner 2.0

Disclosure

PublishedMay 1, 2025

Latest updateMar 25, 2026